Scanned pages/files
Request | Server response | Status |
http://dalab.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 03 Dec 2015 07:43:30 GMT Pragma: no-cache Location: http://www.dalab.com/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=q7ffimqjo63n21s4vi3pufsug2; path=/ X-Pingback: http://www.dalab.com/dalab/xmlrpc.php | clean |
http://www.dalab.com/ | 200 OK Content-Length: 16847 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: All my sites were hacked by a wordpress based attack more than likely a plugin. Will be recovering t ...[11623 bytes skipped]... thumbnail-590x400 590x400 thumbnail-590x400" width="590" height="400" /></a> </div> <div class="slide-details"> <h2><a href="http://www.dalab.com/dalab/hello-world/" rel="bookmark" title="Permanent Link to Back from the hack">Back from the hack</a></h2> <div class="description"> <p>All my sites were hacked by a wordpress based attack more than likely a plugin. Will be recovering the site as time permits.</p> <h2 class="left"><a href="http://www.dalab.com/dalab/hello-world/" rel="bookmark" title="Permanent Link to Back from the hack" class="button">Continue Reading</a></h2> </div> </div> <div class="clear"></div> </div> </div> </div> <!-- End Pagination --> ...[7787 bytes skipped]... | ||
http://widgets.twimg.com/j/2/widget.js?ver=4.3.1 | 200 OK Content-Length: 1489 Content-Type: application/javascript | clean |
http://www.dalab.com/dalab/wp-includes/js/jquery/jquery.js?ver=1.11.3 | 200 OK Content-Length: 95977 Content-Type: text/javascript | clean |
http://www.dalab.com/dalab/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://www.dalab.com/dalab/wp-content/themes/modularity/includes/js/jquery-ui-1.7.2.custom.min.js?ver=4.3.1 | 200 OK Content-Length: 8104 Content-Type: text/javascript | clean |
http://www.dalab.com/dalab/wp-content/themes/modularity/includes/js/nav/superfish.js?ver=4.3.1 | 200 OK Content-Length: 3714 Content-Type: text/javascript | clean |
http://www.dalab.com/dalab/wp-content/themes/modularity/includes/js/nav/supersubs.js?ver=4.3.1 | 200 OK Content-Length: 3298 Content-Type: text/javascript | clean |
http://www.dalab.com/dalab/wp-content/themes/modularity/includes/js/search.js?ver=4.3.1 | 200 OK Content-Length: 774 Content-Type: text/javascript | clean |
http://www.dalab.com/dalab/wp-includes/js/swfobject.js?ver=2.2-20120417 | 200 OK Content-Length: 10231 Content-Type: text/javascript | clean |
http://www.dalab.com/dalab/wp-content/themes/modularity/includes/js/jquery.cycle.js?ver=4.3.1 | 200 OK Content-Length: 28862 Content-Type: text/javascript | clean |
http://www.dalab.com/dalab/wp-content/plugins/jetpack/modules/photon/photon.js?ver=20130122 | 200 OK Content-Length: 1378 Content-Type: text/javascript | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=201549 | 200 OK Content-Length: 10372 Content-Type: application/x-javascript | clean |
http://stats.wp.com/e-201549.js | 200 OK Content-Length: 3334 Content-Type: application/x-javascript | clean |
http://dalab.com/test404page.js | 404 Not Found Content-Length: 2445 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1688 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dalab.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 03 Dec 2015 07:43:30 GMT
Pragma: no-cache
Location: http://www.dalab.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=q7ffimqjo63n21s4vi3pufsug2; path=/
X-Pingback: http://www.dalab.com/dalab/xmlrpc.php
...0 bytes of data.
GET / HTTP/1.1
Host: dalab.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 03 Dec 2015 07:43:30 GMT
Pragma: no-cache
Location: http://www.dalab.com/
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=q7ffimqjo63n21s4vi3pufsug2; path=/
X-Pingback: http://www.dalab.com/dalab/xmlrpc.php
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: dalab.com
Referer: http://www.google.com/search?q=dalab.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dalab.com
Referer: http://www.google.com/search?q=dalab.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dalab.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dalab.com/
Result: dalab.com is not infected or malware details are not published yet.
Result: dalab.com is not infected or malware details are not published yet.